XSS Auditor Brute Force Vulnerability in Google Chrome

XSS Auditor Brute Force Vulnerability in Google Chrome

CVE-2017-5045 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

XSS Auditor in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed detection of a blocked iframe load, which allowed a remote attacker to brute force JavaScript variables via a crafted HTML page.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.